- Ensure that /etc/cron.{hourly,daily,weekly,monthly} have proper
permissions and owner. This is racy but prevents some LPE vectors
- Requires smtp_daemon (not just Recommends) as it's needed by
run-crons script [bsc#1064834]
- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)

- Update to version 3.6.0:
+ Bugs fixed: Numeric keypad nav keys don't work (bgo#667390).
- Readd bison, flex and itstool BuildRequires since configures
actually do check for them.
- Update to version 3.5.4:
+ Bugs fixed:
- No application icon on Wayland.
- Tags dialog: improved usability. Do not select the entry
content after opening the dialog; add a comma at the end of
the tags entry to simplify the addition of a new tag; support
keyboard navigation (bgo#777234).
- Hi-DPI: "High" quality zoom is pixelated on hi-dpi monitors
(bgo#779340).
- Web services: fixed errors and removed features no longer
supported by the APIs:
. Facebook: fixed authorization process; removed photo
importer.
. PicasaWeb: removed album creation; remember application
authorization (bgo#784142).
. Photobucket: removed uploader.
- Image viewer: use a white background for transparency
(bgo#780207).
- Fixed saving of uris in settings (bgo#783498).
- Color manager: fixed crash when no device is found
(bgo#789347).
- Do not save selections. This broke workflows where selections
were involved.
- Removed obsolete file gthumb.convert (bgo#767034).
+ Updated manual translations.
+ Updated translations.
- Update Url to https://wiki.gnome.org/Apps/gthumb: current
gThumb's web page.
- Point fdupes to the data directory instead of the build root,
which is a practice that must be avoided.
- Drop pkgconfig(sm) and its --with-smclient=xsmp configure
parameter: not needed/used anymore since its parameter no longer
exist.
- Drop bison, flex, pkgconfig(ice) and itstool BuildRequires: they
are not needed/used anymore.
- Replace pkgconfig(libsoup-gnome-2.4) with pkgconfig(libsoup-2.4):
libsoup is the required dependency and was already in use. They
are different files but live in the same package-devel.

==== hddtemp ====

- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)

==== icecream ====
Subpackages: icecream-clang-wrappers

- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)

==== icinga ====

- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)

- instead of hardcoding version 10, just check if the prio is
smaller than 80.
- simplify the postgresql-install-alternatives to only require the
pg version and go from there.
supported calls of the script are:
/usr/share/postgresql/install-alternatives postgresqlXY
/usr/share/postgresql/install-alternatives XY
where XY can currently be: 92 93 94 95 96 10
- CVE-2017-14798, bsc#1062722: Fix LPE via postgres init script.
This only affected SysV-init based systems (i.e. SLE11).
- postgresql-test was missing a %files section.
- Move the start/stop script to /usr/share/postgresql
- Add a script for handling update-alternatives as subpackages
get installed/uninstalled, so that the implementation packages
don't have to repeat the logic (postgresql-install-alternatives).
- Add the postgresql-test subpackage.
- Fix some dependencies.
- Save the enabled and running state when upgrading from the
obsolete postgresql-init package.
- properly guard the systemd macro in %pre server so it wont be
used on sle11
- add Requires(pre) so we have groupadd/useradd available
- Refine the dependencies between the "dummy" packages and the
actual implementation of PostgreSQL. The dummy packages now
require an arbitrary implementation and recommend the default
version.
- Move the contents of postgresql-init to the server package.
- bump to 10
- Bump version and defaultpackage to 9.6 in SLE12 (bsc#1046324).

- port /usr/share/postgresql/install-alternatives usage to the new
scheme
- update to 10.1
* Security Issues
- CVE-2017-15098: Memory disclosure in JSON functions
- CVE-2017-15099: INSERT ... ON CONFLICT DO UPDATE fails to
enforce SELECT privileges
Prior to this release, the "INSERT ... ON CONFLICT DO UPDATE"
would not check to see if the executing user had permission
to perform a "SELECT" on the index performing the conflicting
check. Additionally, in a table with row-level security
enabled, the "INSERT ... ON CONFLICT DO UPDATE" would not
check the SELECT policies for that table before performing
the update.
This fix ensures that "INSERT ... ON CONFLICT DO UPDATE"
checks against table permissions and RLS policies before
executing.
* Bug Fixes and Improvements
This update also fixes a number of bugs reported in the last
few months. Some of these issues affect only version 10, but
many affect all supported versions:
- Fix a race condition in BRIN indexing that could cause some
rows to not be included in the indexing.
- Fix crash when logical decoding is invoked from a PL language
function.
- Several fixes for logical replication.
- Restored behavior for CTEs attached to INSERT/UPDATE/DELETE
statements to pre-version 10.
- Prevent low-probability crash in processing of nested trigger
firings.
- Do not evaluate an aggregate function's argument expressions
when the conditions in the FILTER clause evaluate to FALSE.
This complies with SQL-standard behavior.
- Fix incorrect query results when multiple GROUPING SETS
columns contain the same simple variable.
- Fix memory leak over the lifespan of a query when evaluating
a set-returning function from the target list in a SELECT.
- Several fixes for parallel query execution, including fixing
a crash in the parallel execution of certain queries that
contain a certain type of bitmap scan.
- Fix json_build_array(), json_build_object(),
jsonb_build_array(), and jsonb_build_object() to handle
explicit VARIADIC arguments correctly.
- Prevent infinite float values from being casted to the
numeric type.
- Fix autovacuum's ?work item? logic to prevent possible
crashes and silent loss of work items.
- Several fixes for VIEWs around adding columns to the end of a
view.
- Fix for hashability detection of range data types that are
created by a user.
- Improvements on using extended statistics on columns for the
purposes of query planning.
- Prevent idle_in_transaction_session_timeout from being
ignored when a statement_timeout occurred earlier.
- Fix low-probability loss of NOTIFY messages due more than 2
billion transactions processing before any queries are
executed in the session.
- Several file system interaction fixes.
- Correctly restore the umask setting when file creation fails
in COPY or lo_export().
- Fix pg_dump to ensure that it emits GRANT commands in a valid
order.
- Fix pg_basebackup's matching of tablespace paths to
canonicalize both paths before comparing to help improve
Windows compatibility.
- Fix libpq to not require user's home directory to exist when
trying to read the "~/.pgpass" file.
- Several fixes for ecpg.
- This update also contains tzdata release 2017c, with updates
for Fiji, Namibia, Northern Cyprus, Sudan, Tonga, and Turks &
Caicos Islands, plus historical corrections for Alaska,
Apia, Burma, Calcutta, Detroit, Ireland, Namibia, and Pago
Pago.
For more details see:https://www.postgresql.org/docs/current/static/release-10-1.html
- Use /usr/share/postgresql/install-alternatives in the respective
scriptlets.
- Fix the logic around restart on upgrade and stop on removal.
We bring the binaries, but we don't own the unit file.
- Update to the final 10.0 release. Major enhancements include:
* Logical replication using publish/subscribe
* Declarative table partitioning
* Improved query parallelism
* Significant general performance improvements
* Stronger password authentication based on SCRAM-SHA-256
* Improved monitoring and control
A dump/restore using pg_dumpall, or use of pg_upgrade, is
required for those wishing to migrate data from any previous
release.
Version 10 contains a number of changes that may affect
compatibility with previous releases.
See the release notes for details:https://www.postgresql.org/docs/10/static/release-10.html
- Reduce the number of version-related macros in the spec file.
- Break a build dependency loop in the server packages that led to
bootstrap problems.
- Update to 10rc1
PostgreSQL 10 RC 1 requires an upgrade from beta 4, or earlier
either using pg_dump / pg_restore or pg_upgrade.
Changes since beta4 include:
* Add psql variables showing server version and psql version.
* Several fixes for partitioning
* Several fixes for logical replication
* Several fixes for transition tables
* Fix for query that could end up in an uninterruptible state
- Adjust dependencies to the new packaging schema.
- update to 10beta4
PostgreSQL 10 beta 4 requires an upgrade from beta 3, or earlier
either using pg_dump / pg_restore or pg_upgrade.
Any bugfixes applied to 9.6 or earlier that also affected 10 are
included in beta 4. Our users and contributors also reported bugs
against 10 beta 3, and many of them have been fixed in this
release. We urge our community to re-test to ensure that these
bugs are actually fixed, including:
- Show foreign tables in information_schema.table_privileges
view. This fix applies to new databases, see the release notes
for the procedure to apply the fix to an existing database.
- Clean up handling of a fatal exit (e.g., due to receipt of
SIGTERM) that occurs while trying to execute a ROLLBACK of a
failed transaction
- Remove assertion that could trigger during a fatal exit
- Correctly identify columns that are of a range type or domain
type over a composite type or domain type being searched for
- Prevent crash when passing fixed-length pass-by-reference data
types to parallel worker processes
- Fix crash in pg_restore when using parallel mode and using a
list file to select a subset of items to restore
- Change ecpg?s parser to allow RETURNING clauses without
attached C variables
- Change ecpg?s parser to recognize backslash continuation of C
preprocessor command lines
- Improve selection of compiler flags for PL/Perl on Windows
- Fix make check to behave correctly when invoked via a non-GNU
make program
Note that some known issues remain unfixed. Before reporting a
bug in the beta, please check the Open Items page.https://wiki.postgresql.org/wiki/PostgreSQL_10_Open_Items
- update to 10beta3
- hash: Fix write-ahead logging bugs related to init forks
- Fix oddity in error handling of constraint violation in
ExecConstraints for partitioned tables
- Use a real RT index when setting up partition tuple routing
- Fix serious performance problems in json(b) to_tsvector()
- Fix problems defining multi-column range partition bounds
- Fix partitioning crashes during error reporting
- Fix race conditions in replication slot operations
- Fix very minor memory leaks in psql's command.c
- PL/Perl portability fix: avoid including XSUB.h in plperl.c
- Fix inadequate stack depth checking in the wake of expression
execution changes
- Allow creation of C/POSIX collations without depending on libc
behavior
- Fix OBJECT_TYPE/OBJECT_DOMAIN confusion
- Remove duplicate setting of SSL_OP_SINGLE_DH_USE option
- Fix crash with logical replication on a function index
- Teach map_partition_varattnos to handle whole-row expressions
- Fix lock upgrade hazard in ATExecAttachPartition
- Apply ALTER ... SET NOT NULL recursively in ALTER ... ADD
PRIMARY KEY
- hash: Increase the number of possible overflow bitmaps by 8x
- Only kill sync workers at commit time in subscription DDL
- Fix bug in deciding whether to scan newly-attached partition
- Make pg_stop_backup's wait_for_archive flag work on standbys
- Fix handling of dropped columns in logical replication
- Fix local/remote attribute mix-up in logical replication
- bump version in update-alternatives call
- use multibuild
- initial package

==== ppp ====

- Add Requires group(dialout) (boo#1067511).

==== radvd ====

- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)

==== rpcbind ====

- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)